Date: Mon, 18 Jun 2001 23:36:20 +0100 From: Brian Somers <brian@Awfulhak.org> To: Robert Watson <rwatson@FreeBSD.org> Cc: mi@aldan.algebra.com, kris@obsecurity.org, brian@FreeBSD.org, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org, brian@Awfulhak.org Subject: Re: cvs commit: src/usr.sbin/ppp ccp.c ccp.h command.c deflate.c fsm.c fsm.h ip.c mppe.c ppp.8 pred.c Message-ID: <200106182236.f5IMaKh18305@hak.lan.Awfulhak.org> In-Reply-To: Message from Robert Watson <rwatson@FreeBSD.org> of "Mon, 18 Jun 2001 15:16:31 EDT." <Pine.NEB.3.96L.1010618151428.88082H-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>
> On Mon, 18 Jun 2001 mi@aldan.algebra.com wrote:
>
> > > Only if you trust microsoft not to have screwed up the crypto, like
> > > they usually do with their protocols.
> >
> > Well, I'm only planning to use the FreeBSD implementation of the
> > protocol, which, was done from scratch and audited. Or was it not?
>
> Security failures can happen in at least two components here: (1) protocol
> design, and (2) implementation of the protocol. Microsoft was clearly
> involved in step (1), and probably heavily influenced step (2) by virtue
> of their own implementation choices. In the past, Microsoft has
> demonstrated their ability to fail in both categories (1) and (2). That
> said, both categories of failures are widespread: the SSH protocol has had
> protocol design failures, and SSH implementations have likewise had
> implementation errors.
You're making it all sound terribly bleak... :)
> Robert N M Watson FreeBSD Core Team, TrustedBSD Project
> robert@fledge.watson.org NAI Labs, Safeport Network Services
--
Brian <brian@Awfulhak.org> <brian@[uk.]FreeBSD.org>
<http://www.Awfulhak.org>; <brian@[uk.]OpenBSD.org>
Don't _EVER_ lose your sense of humour !
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200106182236.f5IMaKh18305>